System and method for cross region resource management for regional infrastructure resources in a cloud infrastructure environment

ABSTRACT

Systems and methods described herein for providing cross-region resource management for regional infrastructure resources in a cloud infrastructure environment. Systems and methods can provide a cross-region resource management tool that can provide searching, viewing, and management capabilities for any resource in any of the regions to which the cross-region resource management tool has access to. A user (having sufficient access levels, such as an administrator or other privileged user) can access the cross-region resource management tool to view and manage all customer resources in any region of the cloud infrastructure, no matter which region the user is located in.

CLAIM OF PRIORITY AND CROSS REFERENCE TO RELATED APPLICATIONS

This application claims the benefit of priority to U.S. Provisional Patent Application entitled “SYSTEM AND METHOD FOR CROSS REGION RESOURCE MANAGEMENT FOR REGIONAL INFRASTRUCTURE RESOURCES IN A CLOUD INFRASTRUCTURE ENVIRONMENT”, Application No. 62/900,267, filed Sep. 13, 2019; and to U.S. Provisional Patent Application entitled “SYSTEM AND METHOD FOR SERVICE LIMIT INCREASE FOR A MULTI-TENANT CLOUD INFRASTRUCTURE ENVIRONMENT”, Application No. 62/894,316, filed Aug. 30, 2019; each of which above applications are herein incorporated by reference.

This application is related to each of the following applications: U.S. Patent Application entitled “SYSTEM AND METHOD FOR TAG BASED RESOURCE LIMITS OR QUOTAS IN A CLOUD INFRASTRUCTURE ENVIRONMENT”, application Ser. No. 16/986,158, filed Aug. 5, 2020; U.S. Patent Application entitled “SYSTEM AND METHOD FOR TAG BASED REQUEST CONTEXT IN A CLOUD INFRASTRUCTURE ENVIRONMENT”, application Ser. No. 16/986,160, filed Aug. 5, 2020; U.S. Patent Application entitled “SYSTEM AND METHOD FOR COMPARTMENT QUOTAS IN A CLOUD INFRASTRUCTURE ENVIRONMENT”, application Ser. No. 16/986,162, filed Aug. 5, 2020; U.S. Patent Application entitled “SYSTEM AND METHOD FOR SUPPORTING A QUOTA POLICY LANGUAGE IN A CLOUD INFRASTRUCTURE ENVIRONMENT”, application Ser. No. 16/986,163, filed Aug 5, 2020; U.S. Patent Application entitled “SYSTEM AND METHOD FOR SUPPORTING A USAGE CALCULATION PROCESS IN A CLOUD INFRASTRUCTURE ENVIRONMENT”, application Ser. No. 16/986,164, filed Aug. 5, 2020; and U.S. Patent Application entitled “SYSTEM AND METHOD FOR SERVICE LIMIT INCREASE FOR A MULTI-TENANT CLOUD INFRASTRUCTURE ENVIRONMENT” (Attorney Docket No. ORACL-05964US1), application Ser. No. ______, filed Aug. 28, 2020; each of which above applications are herein incorporated by reference.

COPYRIGHT NOTICE

A portion of the disclosure of this patent document contains material which is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever.

TECHNICAL FIELD

Embodiments described herein are generally related to cloud infrastructure environments, such as Infrastructure as a Service (IaaS), and are particularly related to systems and methods for providing cross-region resource management for regional infrastructure resources in a cloud infrastructure environment.

BACKGROUND

Cloud infrastructure environments can comprise sets of complementary cloud services that enable users and clients (throughout the specification, the terms “clients” and “customers” can be used interchangeably) to build and run a wide range of applications and services in a highly available hosted environment.

Year to year, more and more businesses and organizations are migrating mission critical applications and systems to a cloud infrastructure environment. There are various reasons for this shift. For example, many businesses are moving to the cloud in order to reduce the cost and complexity of operating, maintaining, and building out on-premise infrastructure. As well, cloud infrastructure also allows for a more rapid information technology (IT) delivery mechanism. Some businesses and organizations additionally see the cloud infrastructure environment as a means to gain a leg up on competition by adapting to a nimbler system.

Within IaaS (Infrastructure as a Service) models, a cloud provider can provide, host, and manage infrastructure components that would, in traditionally settings, be on-premise at each customer's/client's location. Such traditionally on-premise components can include hardware, for example, data warehouses and data centers, servers, storage, networking hardware, as well as software, such as virtualization software.

IaaS providers can, in addition to providing hardware and software that would traditionally be on-premise, also provide services to their clients and customers. As an example, clients and customers can be allowed to tailor their IaaS subscription to fit their needs, which then in turn allows for detailed and broken-down billing and invoicing. IaaS can also support features such as load balancing, redundancy, replication and recover. Because such services are offered and supported by the IaaS provider (and not the customer), this leaves clients and customers to be more focused on improving their business by pushing more into automation and orchestration for their services.

Cloud infrastructures enable users and clients to seamlessly run traditional enterprise applications along with cloud-native apps, all on the same platform, reducing operational overhead and enabling direct connectivity between both types of workloads.

SUMMARY

In accordance with an embodiment, systems and methods described herein for providing cross-region resource management for regional infrastructure resources in a cloud infrastructure environment. Systems and methods can provide a cross-region resource management tool that can provide searching, viewing, and management capabilities for any resource in any of the regions to which the cross-region resource management tool has access to. A user (having sufficient access levels, such as an administrator or other privileged user) can access the cross-region resource management tool to view and manage all customer resources in any region of the cloud infrastructure, no matter which region the user is located in.

In accordance with an embodiment, described herein are systems and methods for providing compartment quotas for a cloud infrastructure environment. In accordance with an embodiment, cloud administrators do not generally have the ability to restrict resource usage in existing clouds. Granting a user permission to create resources allows them to create any number of resources up to a predefined account limit. Compartment quotas allow admins to restrict a user's resource usage to the appropriate level allowing fine-tuned cost control.

In accordance with an embodiment, customers can be assigned service level limits defined by the cloud infrastructure environment at account creation time. These service level limits restrict the total number of resources a customer can create across the entire tenancy (e.g., across multiple regions with multiple compartments). Tenancy and compartment administrators can utilize compartment quotas to set resource-specific limits. Without such compartment limits, a user that is authorized to launch instances can consume all available capacity in the entire tenancy. Compartment resource limits solve this problem and, unlike service limits, are set and customized by the clients and customers via, e.g., a console, SDK, or API. Compartment limits can be applied on top of the service limits and inherited through the nested compartment hierarchy. This allows compartment administrators to limit resource consumption and set boundaries around acceptable resource use.

In accordance with an embodiment, described herein are systems and methods for supporting a quota policy language in a cloud infrastructure environment. A quota policy can be configured by setting a statement syntax. In order to set a quota, the quota can establish a number of factors. Each quota can be unique within a service family (e.g. compute), and as such, each quota can define a target service along with a quota name. Next, a quota can define the value to set the quota to, as well as a compartment the quota targets. There can be a set of conditions that can be included determine when the quota is applied.

In accordance with an embodiment, described herein are systems and methods for supporting a usage calculation process or algorithm in a cloud infrastructure environment. The usage calculation process can be used to determine whether a requested transaction that targets a compartment within a tree-structure of compartments violates any compartment quota or limit within parent compartments within the tree-structure.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 illustrates a system for providing a cloud infrastructure environment, in accordance with an embodiment.

FIG. 2 illustrates a system for providing cloud infrastructure regions within a cloud infrastructure environment, in accordance with an embodiment.

FIG. 3 illustrates a system for providing compartment policies within compartments spanning cloud infrastructure regions within a cloud infrastructure environment, in accordance with an embodiment.

FIG. 4 illustrates a system for compartment migration within a cloud infrastructure environment, in accordance with an embodiment.

FIG. 5 shows a system for policy management and enforcement during compartment migration within a cloud infrastructure environment.

FIG. 6 shows a system for supporting compartment quotas in a cloud infrastructure environment, in accordance with an embodiment.

FIG. 7 shows a system for supporting compartment quotas in a cloud infrastructure environment, in accordance with an embodiment.

FIG. 8 shows a system for cross-region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

FIG. 9 shows a system for cross-region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

FIG. 10 shows a system for cross-region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

FIG. 11 shows a screenshot of a user-interface display for a cross-region resource management tool for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

FIG. 12 is a flowchart of a method for cross-region resource management for regional infrastructure in a cloud infrastructure environment, in accordance with an embodiment.

DETAILED DESCRIPTION

As described above, cloud infrastructure environments can comprise sets of complementary cloud services that enable users and clients to build and run a wide range of applications and services in a highly available hosted environment.

FIG. 1 shows a system for providing a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, a cloud infrastructure environment 100, which can be run on a number of hardware and software resources 112, can comprise a console interface 102 and an API 104. In addition, the cloud infrastructure environment 100 can support a number of governance services 110, an identity and access management (IAM) service 120, and a provisioning service 130. The cloud infrastructure environment 100 can also support a number of resources 140, e.g., in layers, such as a computer resource layer 150, a network resource layer 160, and a storage resource layer 170.

In accordance with an embodiment, a client device, such as a computing device 10 having device hardware (processor, memory . . . etc.) 12, can communicate with the cloud infrastructure environment via a network, such as a wide area network (WAN), a local area network (LAN), or the internet, for example. The client device can comprise an administrator application 14, which can comprise a user interface 16.

In accordance with an embodiment, within the cloud infrastructure environment, tenancy can be supported. On registration and deployment, a tenancy can be created for each client/customer, which can comprise a secure and isolated partition within the cloud infrastructure in which the client can create, organize, and administer their cloud resources.

In accordance with an embodiment, the console interface 102 and the API 104 can provide clients with access to, and control over respective portions of the could infrastructure environment. In accordance with an embodiment, the console interface can comprise an intuitive, graphical interface that lets clients create and manage resources, instances, cloud networks, and storage volumes, as well as manage users associated with the client, and set permissions within the client scope. As well, the API 104 can compromise, for example, a REST API that utilizes HTTPS (hypertext transfer protocol secure).

In accordance with an embodiment, one example of a console interface or API can be a configuration management tool (e.g., Ansible). The configuration management tool can be used for cloud infrastructure provisioning, orchestration, and configuration management. Configuration management tools can allow clients to automate configuring and provisioning of the cloud infrastructure, deploying and updating software assets, and orchestrating complex operational processes.

In accordance with an embodiment, the governance services 110 of the cloud infrastructure environment provides clients tools to help clients enable simple resource governance, manage costs, and control access to the cloud infrastructure. As an example, the governance services provide for tagging which can allow for clients to apply tags to their resources for informational or operational reasons. Defined tags can be controlled to avoid incorrect tags from being applied to resources. Tags can also provide a flexible targeting mechanism for administrative scripts. As well, the governance services can allow for managed budgets, and track actual and forecasted spend all from one place. This allows clients to stay on top of usage with a cost analysis dashboard, and filter by compartments and tags to analyze spending by departments, teams, and projects. Such data can as well be exported for detailed resource utilization reporting and integration with an existing cloud management and business intelligence tools. The governance services can also log events that can later be retrieved, stored, and analyzed for security, compliance, and resource optimization across the loud infrastructure entitlements and compartments.

In accordance with an embodiment, the identity and access management (IAM) service 120 can create a user profile for each client/customer/user in the IAM service with associated with user credential (e.g., username and password). Clients can be granted administrator privileges in the cloud infrastructure as well via the IAM service.

In accordance with an embodiment, the identity and access management service can be integrated with the cloud infrastructure environment. Upon a client registering. The IAM service can create a separate user credential in an identity service, which can then allow for single sign on to the cloud infrastructure service as well as access to additional cloud services.

In accordance with an embodiment, the provisioning service 130 can provision, for example, a tenancy within cloud infrastructure service, such as within the resources 140. The provisioning service can be accessed and controller through, for example, the console interface or via one or more APIs, such as API 104. The provisioning service can allow for lets clients to provision and manage compute hosts, which can be referred to as instances. Clients can launch instances as needed to meet compute and application requirements. After a client launches an instance, the provisioned instance can be accessed from, for example, a client device. The provisioning service can also provide for restarting an instance, attaching and detaching volumes from an instance, and terminating an instance.

In accordance with an embodiment, resources 140 provided by an cloud infrastructure environment can be broken down into a plurality of layers, such as a compute resources layer 150, a network resources layer 160, and a storage resource layer 170.

In accordance with an embodiment, the compute resources layer 150 can comprise a number of resources, such as, for example, bare metal instances 152, virtual machines 154, edge services 156, and containers 158. The compute resources layer can be used to, for example, provision and manage bare metal compute instances, provision instances as needed to deploy and run applications, just as in an on-premises data center.

In accordance with an embodiment, the cloud infrastructure environment can provide control of one or more physical host (“bare metal”) machines within the compute resources layer. Bare metal compute instances run directly on bare metal servers without a hypervisor. When ca bare metal compute instance is provisioned, the client can maintain sole control of the physical CPU, memory, and network interface card (NIC). The bar metal compute instance can be configured and utilize the full capabilities of each physical machine as if it were hardware running in an on-premise own data center. As such, bare metal compute instances are generally not shared between tenants.

In accordance with an embodiment, bare metal compute instances can provide, via the associated physical hardware as opposed to a software-based virtual environment, a high level of security and performance.

In accordance with an embodiment, the cloud infrastructure environment can provide control of a number of virtual machines within the compute resources layer. A virtual machine compute host can be launched, for example, from an image that can determine the virtual machines operation system as well as other software. The types and quantities of resources available to a virtual machine instance can be determined, for example, based upon the image that the virtual machine was launched from.

In accordance with an embodiment, a virtual machine (VM) compute instance can comprise an independent computing environment that runs on top of physical bare metal hardware. The virtualization makes it possible to run multiple VMs that are isolated from each other. VMs can be used, for example, for running applications that do not require the performance and resources (CPU, memory, network bandwidth, storage) of an entire physical machine.

In some embodiments, virtual machine instances can run on the same hardware as a bare metal instance, which can provide leverage over using the same cloud-optimized hardware, firmware, software stack, and networking infrastructure

In accordance with an embodiment, the cloud infrastructure environment can provide a number of graphical processing unit (GPU) compute instances within the compute resources layer. Accelerated computing requires consistently-fast infrastructure across every service. With GPU instances, clients can process and analyze massive data sets more efficiently, making them useful for complex machine learning (ML), artificial intelligence (AI) algorithms, and many industrial HPC applications. GPU compute instances can be provisioned as either virtualized compute instances (where multiple GPU compute instances share the same bare metal hardware), or as bare metal instances which provide dedicate hardware for each GPU compute instance.

In accordance with an embodiment, the cloud infrastructure environment can provide a number of containerized compute instances within the compute resources layer. A standalone container engine service can be used to build and launch containerized applications to the cloud. The container service can be used, for example, to build, deploy, and manage cloud-native applications. The container service can specify the compute resources that the containerized applications require, and the container engine can then provision, via the provisioning service, the required compute resources for use within the cloud infrastructure environment (e.g., in the context of a tenancy).

In accordance with an embodiment, one such container service engine that can be used is Kubernetes, an open-source system for automating deployment, scaling, and management of containerized applications across clusters of hosts. Such container services can group the containers that make up an application into logical units for easy management and discovery.

In accordance with an embodiment, the network resources layer 160 can comprise a number of resources, such as, for example, virtual cloud networks (VCNs) 162, load balancers 164, edge services 166, and connection services 168.

In accordance with an embodiment, the cloud infrastructure environment can provide a number of virtual cloud networks 162 at the networking resources layer. A virtual cloud network can comprise a virtual version of a traditional network—including subnets, route tables, and gateways—on which client instances can run. A cloud network resides within a single region but includes all the region's availability domains. Each subnet defined in the cloud network can either be in a single availability domain or span all the availability domains in the region (recommended). At least one cloud network can be configured before launching instances. In certain embodiments, VCNs can be configured via an internet gateway to handle public traffic, a VPN connection, or a fast connect service to securely extend on-premises network.

In accordance with an embodiment, the cloud infrastructure environment can provide a number of load balancers 164 at the networking resources layer. A load balancing service can provide automated traffic distribution from one entry point to multiple servers reachable from a virtual cloud network (VCN). Various load balances can provide a public or private IP address, and provisioned bandwidth.

In accordance with an embodiment, a load balancer can improved resource utilization, scaling, and help ensure high availability. Multipole load balancing policies can be configured, and application-specific health checks can be provided to ensure that the load balancer directs traffic only to healthy instances. The load balancer can reduce maintenance window by draining traffic from an unhealthy application server before it is removed from service for maintenance.

In accordance with an embodiment, a load balancing service enables creation of a public or private load balancer in conjunction with a VCN. A public load balancer has a public IP address that is accessible from the internet. A private load balancer has an IP address from the hosting subnet, which is visible only within the VCN. Multiple listeners can be configured for an IP address to load balance transport different layers of traffic (e.g., Layer 4 and Layer 7 (TCP and HTTP) traffic). Both public and private load balancers can route data traffic to any backend server that is reachable from the VCN.

In accordance with an embodiment, a public load balancer can accept traffic from the internet, a public load balance can be created that is assigned a public address, which serves as the entry point for incoming traffic.

In accordance with an embodiment, a public load balancer is regional in scope. If a region includes multiple availability domains, a public load balancer can have, for example, a regional subnet, or two availability domain-specific (AD-specific) subnets, each in a separate availability domain. With a regional subnet, the load balancer can creates a primary load balancer and a standby load balancer, each in a different availability domain, to ensure accessibility even during an availability domain outage. If a load balance is created in multiple AD-specific subnets, one subnet can host the primary load balancer and the other hosts a standby load balancer. If the primary load balancer fails, the public IP address can switch to the secondary load balancer. The service treats the two load balancers as equivalent.

In accordance with an embodiment, if a region includes only one availability domain, the service requires just one subnet, either regional or AD-specific, to host both the primary and standby load balancers. The primary and standby load balancers can each have a private IP address from the host subnet, in addition to the assigned floating public IP address. If there is an availability domain outage, the load balancer has no failover.

In accordance with an embodiment, private load balances can also be provided so as to isolate the load balancer from the internet and simplify security posture. The load balancer service can assign a private address to the load balancer that serves as the entry point for incoming traffic.

In accordance with an embodiment, a private load balancer can be created by a service to service only one subnet to host both the primary and standby load balancers. The load balancer can be regional or AD-specific, depending on the scope of the host subnet. The load balancer is accessible only from within the VCN that contains the host subnet, or as further restricted by security rules.

In accordance with an embodiment, the assigned floating private IP address is local to the host subnet. The primary and standby load balancers each require an extra private IP address from the host subnet.

In accordance with an embodiment, if there is an availability domain outage, a private load balancer created in a regional subnet within a multi-AD region provides failover capability. A private load balancer created in an AD-specific subnet, or in a regional subnet within a single availability domain region, has no failover capability in response to an availability domain outage.

In accordance with an embodiment, the cloud infrastructure environment can provide a number of edge services 166 at the networking resources layer. In general, edge services comprise a number of services that allow clients to manage, secure, and maintain domains and endpoints. These include, for example, DNS (domain name system), DDoS (distributed denial of service) protection, and email delivery. These services enable clients to optimize performance, thwart cyberattacks, and scale communication.

In accordance with an embodiment, the cloud infrastructure environment can provide a number of connection services 168 at the networking resources layer. Such connection services can provide an easy way to create a dedicated, private connection between a client data center or existing network and the cloud infrastructure environment. The connection service can provide high bandwidth, and a reliable and consistent network.

In accordance with an embodiment, the storage resources layer 170 can comprise a number of resources, such as, for example, block volumes 172, file storage 174, object storage 176, and local storage 178.

In accordance with an embodiment, block volumes 172 provide high-performance network storage capacity that supports a broad range of I/O intensive workloads. Clients can use block volumes to expand the storage capacity of compute instances, to provide durable and persistent data storage that can be migrated across compute instances, and to host large databases.

In accordance with an embodiment, file storage 174 allows clients to create a scalable, distributed, enterprise-grade network file system. File storage supports semantics, snapshots capabilities, and data at-rest encryption.

In accordance with an embodiment, object storage provides high throughput storage for unstructured data. Object storage service enables near limitless storage capacity for large amounts of analytic data, or rich content like images and videos. Block volumes can be backed up to object storage for added durability.

In accordance with an embodiment, local storage 178 can provide, for example, high speed and reliable storage in the form of solid state drives for I/O intensive applications. These can be provided, for example, within bare metal instances. Local storage provides high storage performance for VM's and bare metal compute instances. Some examples include relational databases, data warehousing, big data, analytics, AI and HPC application.

FIG. 2 illustrates a system for providing cloud infrastructure regions within a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, instances of the cloud infrastructure environment described above in FIG. 1 can be hosted in different regions, called cloud infrastructure regions 220. These can be accessed, as described above, via a console, SDK, or APIs, by customer networks 200 via a network, such as the internet 210. Each cloud infrastructure region can comprise management services 222, compute services 224, storage services 226, edge serves 228, network services 230, and physical infrastructure 232.

In accordance with an embodiment, a cloud infrastructure can be hosted in regions and availability domains. A region can be a localized geographic area, and an availability domain can be one or more data centers located within a region. A region is composed of one or more availability domains. Most cloud infrastructure resources can be either region-specific, such as a virtual cloud network, or availability domain-specific, such as a compute instance. Traffic between availability domains and between regions is encrypted.

In accordance with an embodiment, availability domains are isolated from each other, fault tolerant, and very unlikely to fail simultaneously. Because availability domains do not share infrastructure such as power or cooling, or the internal availability domain network, a failure at one availability domain within a region is unlikely to impact the availability of the others within the same region.

In accordance with an embodiment, availability domains within the same region can be connected to each other by a low latency, high bandwidth network, which can provide high-availability connectivity to the internet and on-premises, and to build replicated systems in multiple availability domains for both high-availability and disaster recovery.

In accordance with an embodiment, regions are independent of other regions and can be separated geographically (e.g., across countries or continents). This then leads to the deployment of an application within a region where the application would most likely be utilized the most frequently.

In accordance with an embodiment, however, applications can also be deployed in different regions for various reasons. This can include, for example, risk mitigation when events, such as weather systems, take a region offline. In addition, applications can be deployed in other regions for strategic reasons, such as tax domains or other business or social criteria.

In accordance with an embodiment, there are several services that are available across regions. These include, for example, management services 222, compute services 224, storage services 226, edge services 228, and network services 230.

In accordance with an embodiment, compartments allow clients to organize and control access to cloud resources. A compartment is a collection of related resources (such as instances, virtual cloud networks, block volumes) that can be accessed only by certain groups that have been given permission by an administrator. A compartment can be thought of as a logical group and not a physical container. When working within a console, a compartment can act as a filter for what is allowed to be viewed.

In accordance with an embodiment, compartments can have several layers. For example, a tenancy can be considered a root compartment that holds all of a client's cloud resources. Additional compartments can be created within that root compartment (tenancy) and corresponding policies to control access to the resources in each compartment. When clients create a cloud resource such as an instance, block volume, or cloud network, such a resource can be directed to a specific compartment or compartments. Compartments can span regions.

Fault Domains

In accordance with an embodiment, a fault domain can comprise a grouping of hardware and infrastructure within an availability domain. Each availability domain can comprise three fault domains. Fault domains allow instances to be distributed so that they are not on the same physical hardware within a single availability domain. A hardware failure or Compute hardware maintenance that affects one fault domain does not affect instances in other fault domains.

In accordance with an embodiment, placement of resources, such as compute, bare metal DB system, or virtual machine DB system instances, can optionally specify a fault domain or a new instance at launch time. The resources can additionally change fault domains after placement by terminating the resource at the current fault domain and launching a new instance of the resource at another fault domain.

In accordance with an embodiment, fault domains can be utilized for a number of reasons, such as protecting against unexpected hardware failures and protecting against planned outages due to maintenance.

Availability

In accordance with an embodiment, service availability can be provided. Regions within cloud infrastructure environments can provide core infrastructure services and resources, including the following:

-   -   Compute: Compute (Bare Metal & VM, DenselO & Standard),         Container Engine for Kubernetes, Registry     -   Storage: Block Volume, File Storage, Object Storage, Archive         Storage     -   Networking: Virtual Cloud Network, Load Balancing, FastConnect     -   Database: Database, Exadata Cloud Service, Autonomous Data         Warehouse, Autonomous Transaction     -   Processing     -   Edge: DNS     -   Platform: Identity and Access Management, Tagging, Audit

In accordance with an embodiment, the above services and resources can be generally available, while other services and resources can additionally be available as well (e.g., based upon regional demand or customer request). As an example, new cloud services can be made available in regions as quickly based on a variety of considerations including regional customer demand, ability to achieve regulatory compliance where applicable, resource availability, and other factors. Because of low latency interconnect backbone, customers can use cloud services in other geographic regions with effective results when they are not available in their home region, provided that data residency requirements do not prevent them from doing so.

In accordance with an embodiment, resource availability can be considered in the context of global availability, regional availability, single region availability, and domain availability. Generally speaking, IAM resources are globally available, DB systems, instances, and volumes are specific to a viability domain. Most other resources are regional.

In accordance with an embodiment, examples of globally available resources can include API signing keys, compartments, dynamic groups, federation resources, groups, policies, tag namespaces, tag keys, and users.

In accordance with an embodiment, examples of regionally available resources can include, alarms, applications, buckets (although buckets are regional resources, they can be accessed from any location when the correct region-specific Object Storage URL for the API calls is used), clusters, cloudevents-rules, customer-premises equipment (CPE), DHCP options sets, dynamic routing gateways (DRGs), encryption keys, functions, images, internet gateways, jobs, key vaults, load balancers, local peering gateways (LPGs), metrics, NAT gateways, network security groups, node pools, ons-subscriptions, ons-topics, repositories, reserved public Ips, route tables, security lists, service gateways, stacks, subnets (when a subnet is created, it can be declared to be a regional or specific to an availability domain), virtual cloud networks (VCNs), and volume backups (volume backups can be restored as new volumes to any availability domain within the same region in which they are stored).

In accordance with an embodiment, examples of availability domain-specific resources can include DB Systems, ephemeral public Ips, instances (instances can be attached to volumes in the same availability domain), subnets (when a subnet is created, it can be declared to be a regional or specific to an availability domain), and volumes (volumes can be attached to an instance in a same availability domain).

Compartments

In accordance with an embodiment, administrators can manage compartments within a cloud infrastructure environment.

In accordance with an embodiment, tags can be applied to resources within a compartment. Tags can be used to, for example, organize resources according a schema, such as a business needs schema. Tags can be applied to resources at the time of creation of a resource, or a tag can be updated on an existing resource.

In accordance with an embodiment, compartments are important to the construction and organization of a cloud infrastructure. Resources can be moved between compartments, and resources can be displayed (e.g., via a user interface) organized by compartment within a current region. When working with and managing resources, a compartment can first be selected.

In accordance with an embodiment, compartments are tenancy-wide, and can span across regions. When a compartment is created, the compartment can be made available within every region that a tenancy is subscribed to.

In accordance with an embodiment, compartments can be deleted. In order for a compartment to be deleted, the compartment can have all resources therein removed prior to deletion.

In accordance with an embodiment, the action to delete a compartment can be asynchronous and initiates a work request. The state of the compartment changes to “Deleting” while the work request is executing. If the work request fails, the compartment is not deleted and it returns to the active state.

In accordance with an embodiment, each compartment created within the cloud infrastructure environment can have certain properties. For example, each compartment can be assigned a unique identifier (ID), and can additionally, and optionally, be provided with a modifiable description, as well as a name. In accordance with an embodiment, sub-compartments (or subcompartments) can be defined in a hierarchical manner under a base compartment.

In accordance with an embodiment, access and control over compartments and subcompartments can be limited to administrators or other users with sufficient credentials. Credentials can be associated with differing levels of compartment access. For example, an administrator can have permission to view and access all compartments and work with resources within any compartment of a tenancy, but a user with more limited access will not have such a level of access and control.

FIG. 3 illustrates a system for providing compartment policies within compartments spanning cloud infrastructure regions within a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, as described above, instances of the cloud infrastructure environment described above in FIG. 1 can be hosted in different regions, such as cloud infrastructure regions 320, 330, 340, 350. These can be accessed, as described above, via a console, SDK, or APIs, by customer networks 301 via a network 302, such as the internet.

In accordance with an embodiment, a customer network 301 can comprise, for example, a single computer, a network of customer computers, or other such networks.

In accordance with an embodiment, although not shown in the Figure, each cloud infrastructure region can comprise a number of services, each comprising a number of resources, such as management services, compute services, storage services, edge serves, network services, and physical infrastructure.

In accordance with an embodiment, a cloud infrastructure can be hosted in regions and availability domains. A region can be a localized geographic area, and an availability domain can be one or more data centers located within a region. A region is composed of one or more availability domains. Most cloud infrastructure resources can be either region-specific, such as a virtual cloud network, or availability domain-specific, such as a compute instance. Traffic between availability domains and between regions is encrypted.

In accordance with an embodiment, availability domains are isolated from each other, fault tolerant, and very unlikely to fail simultaneously. Because availability domains do not share infrastructure such as power or cooling, or the internal availability domain network, a failure at one availability domain within a region is unlikely to impact the availability of the others within the same region.

In accordance with an embodiment, availability domains within the same region can be connected to each other by a low latency, high bandwidth network, which can provide high-availability connectivity to the internet and on-premises, and to build replicated systems in multiple availability domains for both high-availability and disaster recovery.

In accordance with an embodiment, regions are independent of other regions and can be separated geographically (e.g., across countries or continents). This then leads to the deployment of an application within a region where the application would most likely be utilized the most frequently.

In accordance with an embodiment, however, applications can also be deployed in different regions for various reasons. This can include, for example, risk mitigation when events, such as weather systems, take a region offline. In addition, applications can be deployed in other regions for strategic reasons, such as tax domains or other business or social criteria.

In accordance with an embodiment, there are several services that are available across regions. These include, for example, management services, compute services, storage services, edge services, and network services.

In accordance with an embodiment, compartments allow clients to organize and control access to cloud resources. A compartment is a collection of related resources (such as instances, virtual cloud networks, block volumes) that can be accessed only by certain groups that have been given permission by an administrator. A compartment can be thought of as a logical group and not a physical container. When working within a console, a compartment can act as a filter for what is allowed to be viewed.

In accordance with an embodiment, compartments can have several layers. For example, a tenancy 305 can be considered a root compartment that holds all of a client's cloud resources. Compartments can be organized in a hierarchical manner, such as compartment 360 being a level below the tenancy compartment, with sub compartment 370 being an additional layer below the compartment 360. In accordance with an embodiment, each compartment can be associated with one or more compartment policies, such as compartment policy 364, and sub compartment policy 375. Tenant compartment policy is not shown in the Figure.

In accordance with an embodiment, during, upon, or after creation of a compartment, or sub compartment, such as compartment 360 and sub compartment 370, a policy, such as compartment policy 365 and sub compartment policy 375 can be written/created for each compartment and sub compartment. Compartment policies can, for example, restrict which users are allowed to access/utilize resources and services within a compartment. Without a policy in place, access to the compartments and/or sub compartments can be restricted to users having permissions at the tenancy 305 level.

In accordance with an embodiment, upon creation of a compartment within a compartment (i.e., a sub compartment), the sub compartment inherits access permissions from compartments higher up its hierarchy.

In accordance with an embodiment, upon creation of a compartment or sub compartment policy, the policy can comprise a specification indicating which compartment the policy attaches to. Such a specification can contain controls limiting access for subsequence control, modification, or deletion of the policy. In some embodiments, the policies can be attached to a tenancy, a parent compartment, or the specific compartment to which the policy is directed.

In accordance with an embodiment, resources can be placed into a compartment. This can be accomplished by specifying the targeted compartment upon creation of a resource (the compartment is one of the required pieces of information to create a resource). This can be accomplished via a console interface.

In accordance with an embodiment, existing resources can also be moved to different compartments. Most resources can be moved after they are created.

In accordance with an embodiment, some resources have attached resource dependencies and some do not. Not all attached dependencies behave the same way when the parent resource moves.

In accordance with an embodiment, for some resources, the attached dependencies move with the parent resource to the new compartment. The parent resource moves immediately, but in some cases attached dependencies move asynchronously and are not visible in the new compartment until the move is complete.

In accordance with an embodiment, for other resources, the attached resource dependencies do not move to the new compartment. Such attached resources can be moved independently.

In accordance with an embodiment, after a resource is moved to a new compartment, the policies that govern the new compartment apply immediately and affect access to the resource. Depending on the structure of the compartment organization, metering, billing, and alarms can also be affected.

In accordance with an embodiment, after creation, a compartment can be moved to, e.g., a different parent compartment within a same tenancy. Upon moving a compartment, all of the compartment's contents (including sub compartments and resources) are moved along with the compartment.

FIG. 4 illustrates a system for compartment migration within a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, as described above, instances of the cloud infrastructure environment 400 described above in FIG. 1 can be hosted in different regions. Compartments, such as tenancy 405, compartment A 460 and compartment B 470, can be defined within the cloud infrastructure environment, and these compartments can span across regions. Such compartments can be accessed, as described above, via a console, SDK, or APIs, by customer networks 401 via a network 402, such as the internet.

In accordance with an embodiment, a customer network 401 can comprise, for example, a single computer, a network of customer computers, or other such networks.

In accordance with an embodiment, compartments allow clients to organize and control access to cloud resources. A compartment is a collection of related resources (such as instances, virtual cloud networks, block volumes) that can be accessed only by certain groups that have been given permission by an administrator. A compartment can be thought of as a logical group and not a physical container. When working within a console, a compartment can act as a filter for what is allowed to be viewed.

In accordance with an embodiment, compartments can have several layers. For example, a tenancy 405 can be considered a root compartment that holds all of a client's cloud resources. Compartments can be organized in a hierarchical manner, such as compartment A 460 and compartment B 470 being a level below the tenancy compartment, with sub compartment A 465 being defined below compartment A, and sub compartment B 475 being defined below compartment B. In accordance with an embodiment, each compartment can be associated with one or more compartment policies (not shown).

In accordance with an embodiment, compartments defined within a tenancy, for example, can be moved by, for example, re-defining a compartment or sub-compartment.

In accordance with an embodiment, in order to move a compartment, a request with sufficient permissions can be received. That is, a request from a user belonging to a group that has, for example, a “manage all-resources” permissions on the lowest shared parent compartment to the current compartment and the destination compartment of the moving compartment.

That is, for example, a request to move sub-compartment A 465 from compartment A 460 to compartment B 470 must be received from a user with sufficient permissions. Because the tenancy 405 is the lowest shared parent compartment of both the source compartment, compartment A 460, and the destination compartment, compartment B 470, then the request to move sub-compartment A, as shown in the Figure, must be received from a user having “manage all-resources” permissions within the tenancy 405 compartment.

In accordance with an embodiment, in another example, if the request to move sub-compartment A 465 from compartment A to compartment B was received from a user having “manage all-resources” permissions within compartment A only, then the request may fail as the request from the user cannot manage resources within the destination compartment, namely compartment B.

In accordance with an embodiment, upon moving a compartment to a new parent compartment, the access policies of the new parent take effect and the policies of the previous parent compartment no longer apply. In some cases, when moving nested compartments with policies that specify the hierarchy, the polices can be automatically updated to ensure consistency.

In accordance with an embodiment, therefore, a compartment policy of compartment A 460 which was previously applied to sub-compartment A would no longer apply on migration of the sub-compartment A to compartment B. Then, a compartment policy of compartment B would apply to sub-compartment A instead. This is explained more in the description following Figure.

FIG. 5 shows a system for policy management and enforcement during compartment migration within a cloud infrastructure environment.

In accordance with an embodiment, and more specifically, FIG. 5 shows a compartment hierarchy in which a compartment is moved, and the consequences for different policies.

In accordance with an embodiment, as described above, instances of the cloud infrastructure environment 500 described above in FIG. 1 can be hosted in different regions. Compartments, such as tenancy 505, compartment A 560 and compartment B 565, and compartment D 566 can be defined within the cloud infrastructure environment, and these compartments can span across regions. Such compartments can be accessed, as described above, via a console, SDK, or APIs, by customer networks 501 via a network 502, such as the internet.

In accordance with an embodiment, a customer network 501 can comprise, for example, a single computer, a network of customer computers, or other such networks.

In accordance with an embodiment, compartments can have several layers. For example, a tenancy 505 can be considered a root compartment that holds all of a client's cloud resources. Compartments can be organized in a hierarchical manner, such as compartment A 560 being a level below the tenancy. Compartments B 565 and compartment D 566 are then organized as being yet another level below compartment A 560, while sub-compartment C 570 is shown as being originally a level below compartment B. In accordance with an embodiment, each compartment can be associated with one or more compartment policies, such as compartment B policy 582, compartment A policy 580, and compartment D policy 583. Such policies can govern, for example, user/client permissions for access to the compartments, as well as permissions for access to and control of resources within any given compartment. As described above, compartment policies can add to each other (i.e., “stack”), such that a user accessing compartment B 565 would have their interactions with compartment B 565 being governed by/limited by compartment B policy 582 in addition to compartment A policy 580.

In accordance with an embodiment, for example, suppose that compartment B policy 582 allows a group, group 1, to manage the instance-family in compartment A-B (the compartment hierarchy comprising compartment B being a sub compartment of compartment A).

In accordance with an embodiment, suppose also that compartment D policy 583 allows another group, group 2, to manage the instance family in compartment A-D (the compartment hierarchy comprising compartment D being a sub compartment of compartment A).

In accordance with an embodiment, upon compartment C being moved from compartment B to compartment D, members of group 1 can no longer manage instance families in compartment C, while members of group 2 can now manage instance families in compartment C.

In accordance with an embodiment, in certain situations, upon moving a compartment, certain policies can be automatically updated. Policies, for example, that specify the compartment hierarchy down to the compartment being moved can be automatically be updated when the policy is attached to a shared ancestor of the current and target parent.

Referring back to FIG. 5, for example, in accordance with an embodiment, suppose that compartment A policy allows members of a group, group X, to manage buckets in compartment B:C. On moving compartment C to compartment D, because of the shared ancestor (compartment A) between compartments B and D, then the compartment A policy can be automatically updated to allow members of group X to manage buckets in compartment D:C.

In accordance with an embodiment, polices attached to tenancies can be likewise automatically updated upon a compartment moving within the tenancy.

In accordance with an embodiment, however, not all policies are automatically updated upon a compartment moving. For example, in referring to FIG. 5, in the situation where compartment C is moved from compartment B to compartment D. Suppose that the compartment B policy allows management of buckets in compartment C (prior to moving). When compartment C is moved, then, compartment B policy is not automatically updated. Instead, the policy is no longer valid and can be removed (e.g., manually or automatically).

Compartment Quotas

In accordance with an embodiment, cloud administrators do not generally have the ability to restrict resource usage in existing clouds. Granting a user permission to create resources allows them to create any number of resources up to a predefined account limit. Compartment quotas allow restrictions to be placed on the ability to create or use resources within a compartment to the appropriate level allowing fine-tuned cost control.

In accordance with an embodiment, customers can be assigned service level limits defined by the cloud infrastructure environment at account creation time. These service level limits restrict the total number of resources a customer can create across the entire tenancy (e.g., across multiple regions with multiple compartments). Tenancy and compartment administrators can utilize compartment quotas to set resource-specific hard limits. Without such compartment limits, a user that is authorized to launch instances can consume all available capacity in the entire tenancy. Compartment resource limits solve this problem and, unlike service limits, are set and customized by the clients and customers via, e.g., a console, SDK, or API. Compartment limits can be applied on top of the service limits and inherited through the nested compartment hierarchy. This allows compartment administrators to limit resource consumption and set boundaries around acceptable resource use.

In accordance with an embodiment, compartment quotas give tenant and compartment administrators better control over how resources are consumed in a cloud infrastructure environment, enabling administrators to easily allocate resources to compartments using, for example, a console, SDK, or API. Compartment quotas are a powerful toolset to manage client spending in within tenancies.

FIG. 6 shows a system for supporting compartment quotas in a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, as described above, instances of the cloud infrastructure environment described above in FIG. 1 can be hosted in different regions, such as cloud infrastructure regions 620, 630, 640, 650. These can be accessed, as described above, via a console 603, SDK, or APIs, by customer networks 601 via a network 602, such as the internet.

In accordance with an embodiment, a customer network 601 can comprise, for example, a single computer, a network of customer computers, or other such networks.

In accordance with an embodiment, although not shown in the Figure, each cloud infrastructure region can comprise a number of services, each comprising a number of resources, such as management services, compute services, storage services, edge serves, network services, and physical infrastructure.

In accordance with an embodiment, a cloud infrastructure can be hosted in regions and availability domains. A region can be a localized geographic area, and an availability domain can be one or more data centers located within a region. A region is composed of one or more availability domains. Most cloud infrastructure resources can be either region-specific, such as a virtual cloud network, or availability domain-specific, such as a compute instance. Traffic between availability domains and between regions is encrypted.

In accordance with an embodiment, availability domains are isolated from each other, fault tolerant, and very unlikely to fail simultaneously. Because availability domains do not share infrastructure such as power or cooling, or the internal availability domain network, a failure at one availability domain within a region is unlikely to impact the availability of the others within the same region.

In accordance with an embodiment, availability domains within the same region can be connected to each other by a low latency, high bandwidth network, which can provide high-availability connectivity to the internet and on-premises, and to build replicated systems in multiple availability domains for both high-availability and disaster recovery.

In accordance with an embodiment, regions are independent of other regions and can be separated geographically (e.g., across countries or continents). This then leads to the deployment of an application within a region where the application would most likely be utilized the most frequently.

In accordance with an embodiment, however, applications can also be deployed in different regions for various reasons. This can include, for example, risk mitigation when events, such as weather systems, take a region offline. In addition, applications can be deployed in other regions for strategic reasons, such as tax domains or other business or social criteria.

In accordance with an embodiment, compartments allow clients to organize and control access to cloud resources. A compartment is a collection of related resources (such as instances, virtual cloud networks, block volumes) that can be accessed only by certain groups that have been given permission by an administrator. A compartment can be thought of as a logical group and not a physical container. When working within a console, a compartment can act as a filter for what is allowed to be viewed.

In accordance with an embodiment, compartments can have several layers, or levels, arranged in a hierarchical manner. For example, a tenancy 605 can be considered a root compartment that holds all of a client's cloud resources. Compartments can be organized in a hierarchical manner, such as compartment 660 being a level below the tenancy compartment, with sub compartment 670 being an additional layer below the compartment 660. In accordance with an embodiment, each compartment can be associated with one or more compartment resource quotas, such as tenancy resource quota 680 (i.e., the service limit discussed above), compartment resource quota 682, and sub compartment resource quota 684.

In accordance with an embodiment, during, upon, or after creation of a compartment, or sub compartment, such as compartment 660 and sub compartment 670, each corresponding compartment resource quota can be generated via, e.g., the console 603.

In accordance with an embodiment, because of the hierarchical nature of compartments, a compartment resource quota set can be set on a root/base level compartment. An administrator (having a level of access sufficient to manage and create resource quotas within the root compartment) can set quotas on the root compartment, as well as any nested or “child” compartments. Compartment resource quotas set on a parent/root compartment override any compartment resource quotas set on child compartments. In this way, an administrator of a parent compartment can create a quota on a child compartment that cannot be overridden by the child.

In accordance with an embodiment, quotas can have different scopes, and work at the availability domain, the region, or globally. There are a few important things to understand about scope when working with compartment quotas. When setting a quota at the availability domain (AD) level, the quota is allocated to each AD. So, for example, setting a quota of 2 X7 VMs on a compartment actually sets a limit of 2 VMs per AD. Quotas can be written in such a way to target a specific AD. Likewise, regional quotas can apply to each region. For example, if a quota of 10 functions is set on a compartment, 10 functions will be allocated per region. To target a specific region, a quota can use a region parameter.

In accordance with an embodiment, due to the hierarchical nature of compartment quotas, usage (e.g., of resources), resource usage of a sub-compartment counts as resource usage towards a main compartment. That is, for example, in a three-level compartment nest (parent compartment, child compartment, grandchild compartment), where each compartment and sub-compartment has a compartment quota policy attached to it, any resource usage by the grandchild compartment counts against a compartment quota of both the child compartment as well as the parent compartment.

In accordance for example, for example, suppose compartment resource quota 682 specifies that, compartment wide, compartment 660 may only utilize 10 virtual machines of type X. On creation of sub-compartment 670, sub compartment resource quota 684 specifies that, sub-compartment wide, sub compartment 670 may only utilize 8 virtual machines of type X. If, then, sub-compartment 670 utilizes its maximum capacity of virtual machines of type X (namely 8), then compartment 660, and any other sub-compartments thereof (e.g., sub-compartments not shown in the figure), can only utilize an addition 2 virtual machines of type X. The above example additionally applies to the tenancy resource quota 680 (i.e., the service limit) in a similar manner.

In accordance with an embodiment, compartment quotas can be evaluated following these guidelines. Within a policy, quota statements can be evaluated in order, and later statements can supersede previous statements that target the same resource. In cases where more than one policy is set for the same resource, the most restrictive policy can be applied. Service limits always take precedence over quotas. Although it is possible to specify a quota for a resource that exceeds the service limit for that resource, the service limit will still be enforced.

FIG. 7 shows a system for supporting compartment quotas in a cloud infrastructure environment, in accordance with an embodiment.

More specifically, FIG. 7 shows the replication of compartment quotas to different regions after creation/modification/deletion of a compartment quota within a region.

In accordance with an embodiment, as described above, instances of the cloud infrastructure environment described above in FIG. 1 can be hosted in different regions, such as cloud infrastructure regions 720, 730, 740, 750. These can be accessed, as described above, via a console 703, SDK, or APIs, by customer networks 701 via a network 702, such as the internet.

In accordance with an embodiment, a customer network 701 can comprise, for example, a single computer, a network of customer computers, or other such networks.

In accordance with an embodiment, although not shown in the Figure, each cloud infrastructure region can comprise a number of services, each comprising a number of resources, such as management services, compute services, storage services, edge serves, network services, and physical infrastructure.

In accordance with an embodiment, a cloud infrastructure can be hosted in regions and availability domains. A region can be a localized geographic area, and an availability domain can be one or more data centers located within a region. A region is composed of one or more availability domains. Most cloud infrastructure resources can be either region-specific, such as a virtual cloud network, or availability domain-specific, such as a compute instance. Traffic between availability domains and between regions is encrypted.

In accordance with an embodiment, availability domains are isolated from each other, fault tolerant, and very unlikely to fail simultaneously. Because availability domains do not share infrastructure such as power or cooling, or the internal availability domain network, a failure at one availability domain within a region is unlikely to impact the availability of the others within the same region.

In accordance with an embodiment, availability domains within the same region can be connected to each other by a low latency, high bandwidth network, which can provide high-availability connectivity to the internet and on-premises, and to build replicated systems in multiple availability domains for both high-availability and disaster recovery.

In accordance with an embodiment, regions are independent of other regions and can be separated geographically (e.g., across countries or continents). This then leads to the deployment of an application within a region where the application would most likely be utilized the most frequently.

In accordance with an embodiment, however, applications can also be deployed in different regions for various reasons. This can include, for example, risk mitigation when events, such as weather systems, take a region offline. In addition, applications can be deployed in other regions for strategic reasons, such as tax domains or other business or social criteria.

In accordance with an embodiment, compartments allow clients to organize and control access to cloud resources. A compartment is a collection of related resources (such as instances, virtual cloud networks, block volumes) that can be accessed only by certain groups that have been given permission by an administrator. A compartment can be thought of as a logical group and not a physical container. When working within a console, a compartment can act as a filter for what is allowed to be viewed.

In accordance with an embodiment, compartments can have several layers, or levels, arranged in a hierarchical manner. For example, a tenancy 705 can be considered a root compartment that holds all of a client's cloud resources. Compartments can be organized in a hierarchical manner, such as compartment 760 being a level below the tenancy compartment, with sub compartment 770 being an additional layer below the compartment 760. In accordance with an embodiment, each compartment can be associated with one or more compartment resource quotas, such as tenancy resource quota 780 (i.e., the service limit discussed above), compartment resource quota 782, and sub compartment resource quota 784.

In accordance with an embodiment, during, upon, or after creation of a compartment, or sub compartment, such as compartment 760 and sub compartment 770, each corresponding compartment resource quota can be generated via, e.g., the console 703.

In accordance with an embodiment, because of the hierarchical nature of compartments, a compartment resource quota set can be set on a root/base level compartment. An administrator (having a level of access sufficient to manage and create resource quotas within the root compartment) can set quotas on the root compartment, as well as any nested or “child” compartments. Compartment resource quotas set on a parent/root compartment override any compartment resource quotas set on child compartments. In this way, an administrator of a parent compartment can create a quota on a child compartment that cannot be overridden by the child.

In accordance with an embodiment, quotas can have different scopes, and work at the availability domain, the region, or globally. There are a few important things to understand about scope when working with compartment quotas. When setting a quota at the availability domain (AD) level, the quota is allocated to each AD. So, for example, setting a quota of 2 X7 VMs on a compartment actually sets a limit of 2 VMs per AD. Quotas can be written in such a way to target a specific AD. Likewise, regional quotas can apply to each region. For example, if a quota of 10 functions is set on a compartment, 10 functions will be allocated per region. To target a specific region, a quota can use a region parameter.

In accordance with an embodiment, due to the hierarchical nature of compartment quotas, usage (e.g., of resources), resource usage of a sub-compartment counts as resource usage towards a main compartment. That is, for example, in a three-level compartment nest (parent compartment, child compartment, grandchild compartment), where each compartment and sub-compartment has a compartment quota policy attached to it, any resource usage by the grandchild compartment counts against a compartment quota of both the child compartment as well as the parent compartment.

In accordance with an embodiment, quotas can be managed centrally in a single region and replicated globally. This reduces the effort required involved for managing quotas. For example, in looking at FIG. 7, a sub-compartment resource quota policy 784 and a compartment resource quota 782 can be initially defined within region 720. Upon creation, each of the resource quotas 782 and 784 can be replicated in to regions 730, 740, and 750. Such replication can be an asynchronous process that globally replicates the quota policies to the quotas data plane in each data center.

In accordance with an embodiment, compartment quotas provide the ability to completely turn off individual services. As well, an algorithm for calculating resource usage over a hierarchy of resource compartments is provided. Quotas can consist of several primary components: quotas user interface; quotas control plane; quotas data plane; and quotas client SDKs.

In accordance with an embodiment, administrators can manage compartment quota policies through a user interface which behind the scenes calls the quotas control plane where the policies are stored. An asynchronous process globally replicates the data to the quotas data plane in each data center. Other cloud services integrate with the client SDK which can fetch the usage data from the service's persistent storage layer and the quota values from the quotas data plane. It then makes the decision whether the resource creation is permitted.

In accordance with an embodiment, there are a number of conditions that can be set in order for compartment quotas to be initiated. These include, but are not limited to: create/update/delete/list compartment level resource quotas; viewing compartment resource usage; compartment quotas can be set globally to apply to all regions/ADs; region/AD specific compartment quotas can be set and override globally defined quotas; compartment quotas can correspond to existing service quotas where applicable; setting and viewing compartment quotas can be possible through the console; quotas can be strictly enforced by each respective control plane; setting a quota should not fail based on current resource counts or parent compartment values; integrate with core services compute, DBaaS (database as a service) and block storage; achieving strong read after write consistency for get/list operations; ability to enforce zero quotas for free for teams unable to onboard; declarative quota statements via policies; and define compartment quotas to act as either a whitelist or a blacklist (i.e. deny everything not set by a quota or allow everything).

In accordance with an embodiment, control planes can be extended to support compartment resource limits.

Cross Region Resource Management for Regional Infrastructure Resources

In accordance with an embodiment, various cloud infrastructure services can offer functionalities in the cloud for their users to provision resources such as Compute, Storage, Virtual Networks, VCNs etc. Such resources can be stored in in multiple data centers that span geographical regions (i.e., “regions” as used above). Resources can, in some situations, be replicated across different regions within a compartment, such as a customer's tenancy. Generally, customers need the ability to view and manage these resources. Viewing and managing these resources in the cloud becomes challenging when resources span across multiple geographical regions. Cloud providers generally utilize a user interface for each region to view and manage the resources in a specific region. As well, other cloud providers use a search functionality so that users can search a specific resource by specifying its name and region details, or searching globally. However, such cloud providers do not provide a way to manage these resources from outside of each specific region. That is, interface availability is region based, specific to the region where resource was created.

In accordance with an embodiment, in currently available systems, in order to find and display all of the resources in an enterprise, a user must go to every resource type they believe they have in that region and list the resource. They can further select the compartment if they need to view resources in that compartment. Alternatively, they can use search feature in each region, but that is awkward and slow with current user-interfaces.

In accordance with an embodiment, the systems and methods provided herein provide a consolidated resource view across multiple regions so that resource management becomes friction-free.

In accordance with an embodiment, privileged users and administrators generally need access to all the resources (e.g., within a compartment) globally in order to manage inventory and control cost. Existing methods of collecting this information is very involved and time consuming. The presently disclosed systems and methods provide a single point/gateway where such users and administrators can view and manage all resources across multiple regions, thus making workflow more efficient.

In accordance with an embodiment, privileged users and administrators can utilize a global resource view (a cross-region resource management tool) to query, find, view, and manage an entire enterprise in all the regions organized by compartment. In such a way, such users and administrators can easily view resource allocation across compartments. A global resource view can also allow users to view all the resources in a particular compartment in the context of a compartment tree.

FIG. 8 shows a system for cross-region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, a cloud infrastructure environment, such as that described in FIG. 1, can support a number of cloud infrastructure regions, such as regions 820-823. A customer compartment 860, such as a tenancy (which can support additional compartment structures below the overarching tenancy compartment, e.g., in a hierarchical manner) can be defined across multiple regions 820-823.

In accordance with an embodiment, a cross-region resource management tool 850 can be provided within the cloud infrastructure environment. The management tool 850 can additionally comprise a user interface 851 (e.g., a CLI, a GUI, SDK, API . . . etc.).

In accordance with an embodiment, the cross-region resource management tool 850 can provide searching, viewing, and management capabilities for any resource in any of the regions to which the cross-region resource management tool 850 has access to. In the depicted embodiment, for example, a user, e.g., accessing the cloud infrastructure environment via a customer network 801 (having sufficient access levels, such as an administrator or other privileged user) can access the cross-region resource management tool 850, via the user interface 851, to view all customer resources in any of the regions 820-823, no matter where the user is located. That is, the user's home region is region 820, the user may still view all resources within the compartment 860, via the cross-region resource management tool 850, no matter which region each viewed resource is located in.

In accordance with an embodiment, the user, on accessing the resources via for cross-region resource management for regional infrastructure resources, can perform a number of tasks on such resources. These include, but are not limited to:

-   -   Display all resources across all regions in an enterprise,         grouped by compartments.     -   Navigate the compartment hierarchy. The user can browse up and         down compartment trees.     -   View resource key details—name, type, region, status. If a user         clicks a link text, the user can be shown, for example, a full         screen resource details page.     -   Move resources around the hierarchy. The user can select a         resource in a compartment and move it to another compartment         (e.g., in a same region or in a different region).     -   Move compartments around the hierarchy. From a compartment view         hierarchical node, the user can move entire compartment trees.     -   Delete resources. Once a resource is selected, a user can delete         the resource via the UI of the cross-region resource management         tool 350.     -   Filter the view by various attributes. A user can apply filters         to the resource view based upon, for example, tag, type, status,         region.     -   Create resource. A user can create resource and populate the         resource at a targeted region.     -   Expand & collapse compartments, a utility feature to make it         easy to manipulate the depth of compartments users can see.

FIG. 9 shows a system for cross-region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, a cloud infrastructure environment, such as that described in FIG. 1, can support a number of cloud infrastructure regions, such as regions 920-923. A customer compartment 960, such as a tenancy (which can support additional compartment structures below the overarching tenancy compartment, e.g., in a hierarchical manner) can be defined across multiple regions 920-923. Such additional compartment structures can include, for example, compartment 961.

In accordance with an embodiment, a cross-region resource management tool 950 can be provided within the cloud infrastructure environment. The management tool 950 can additionally comprise a user interface 951 (e.g., a CLI, a GUI, SDK, API . . . etc.).

In accordance with an embodiment, the cross-region resource management tool 950 can provide searching, viewing, and management capabilities for any resource in any of the regions to which the cross-region resource management tool 950 has access to.

In accordance with an embodiment, users having different levels of rights and privileges within the cloud infrastructure environment can have such levels or rights and privileges carried over into the cross-region resource management tool as well 950. That is, supposed a first user and a second, accessing the cloud infrastructure environment 900 customer networks 901 and 902 have varying degrees of access. Suppose that the first user has admin access to resources throughout the entire tenancy 960, while the second user only has admin access to resources within the defined compartment 965 in the tenancy. In such a situation, then, the cross-region resource management tool 950 can restrict access to resources within the tenancy accordingly—that is, the first user would have full access and control to all resources, while the second user would only be allowed to access and control those resources within the compartment 965, and not resources defined within the tenancy 960 but not within the compartment 965. In the depicted embodiment, for example, then users, e.g., accessing the cloud infrastructure environment via a customer networks 901 and 902 (having sufficient access levels, such as an administrator or other privileged user) can access the cross-region resource management tool 950, via the user interface 951, to view all customer resources in any of the regions 920-923, no matter where the user is located.

In accordance with an embodiment, the users, on accessing the resources via for cross-region resource management for regional infrastructure resources, can perform a number of tasks on such resources. These include, but are not limited to:

-   -   Display all resources across all regions in an enterprise,         grouped by compartments.     -   Navigate the compartment hierarchy. The user can browse up and         down compartment trees.     -   View resource key details—name, type, region, status. If a user         clicks a link text, the user can be shown, for example, a full         screen resource details page.     -   Move resources around the hierarchy. The user can select a         resource in a compartment and move it to another compartment         (e.g., in a same region or in a different region).     -   Move compartments around the hierarchy. From a compartment view         hierarchical node, the user can move entire compartment trees.     -   Delete resources. Once a resource is selected, a user can delete         the resource via the UI of the cross-region resource management         tool 350.     -   Filter the view by various attributes. A user can apply filters         to the resource view based upon, for example, tag, type, status,         region.     -   Create resource. A user can create resource and populate the         resource at a targeted region.     -   Expand & collapse compartments, a utility feature to make it         easy to manipulate the depth of compartments users can see.

FIG. 10 shows a system for cross-region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, a cloud infrastructure environment, such as that described in FIG. 1, can support a number of cloud infrastructure regions, such as regions 1020-1023. A customer compartment 1060, such as a tenancy (which can support additional compartment structures below the overarching tenancy compartment, e.g., in a hierarchical manner) can be defined across multiple regions 1020-1023.

In accordance with an embodiment, a cross-region resource management tool 1050 can be provided within the cloud infrastructure environment. The management tool 1050 can additionally comprise a user interface 1051 (e.g., a CLI, a GUI, SDK, API . . . etc.).

In accordance with an embodiment, the cross-region resource management tool 1050 can provide searching, viewing, and management capabilities for any resource in any of the regions to which the cross-region resource management tool 1050 has access to. In the depicted embodiment, for example, a user, e.g., accessing the cloud infrastructure environment via a customer network 1001 (having sufficient access levels, such as an administrator or other privileged user) can access the cross-region resource management tool 1050, via the user interface 1051, to view all customer resources in any of the regions 1020-1023, no matter where the user is located. The cross-region resource management tool 1050, and the corresponding user interface 1051, can be provided in a user's home region (e.g., the region assigned to the user as the user's home region).

In accordance with an embodiment, the user, on accessing the resources via for cross-region resource management for regional infrastructure resources, can perform a number of tasks on such resources, such as resource 1070, in all regions that the tenancy spans. These include, but are not limited to:

-   -   Display all resources across all regions in an enterprise,         grouped by compartments.     -   Navigate the compartment hierarchy. The user can browse up and         down compartment trees.     -   View resource key details—name, type, region, status. If a user         clicks a link text, the user can be shown, for example, a full         screen resource details page.     -   Move resources around the hierarchy. The user can select a         resource in a compartment and move it to another compartment         (e.g., in a same region or in a different region).     -   Move compartments around the hierarchy. From a compartment view         hierarchical node, the user can move entire compartment trees.     -   Delete resources. Once a resource is selected, a user can delete         the resource via the UI of the cross-region resource management         tool 350.     -   Filter the view by various attributes. A user can apply filters         to the resource view based upon, for example, tag, type, status,         region.     -   Create resource. A user can create resource and populate the         resource at a targeted region.     -   Expand & collapse compartments, a utility feature to make it         easy to manipulate the depth of compartments users can see.

FIG. 11 shows a screenshot of a user-interface display for a cross-region resource management tool for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, the screenshot shows a compartment view of various resources within a compartment that spans multiple regions within a cloud infrastructure environment. Such display would be provided, for example, by the user interface of the cross-region resource management tool described above.

In accordance with an embodiment, as shown, this graphical user interface displays a representation of a listing of resources 1101. Each resource can be associated with a status 1102, a region where the resource is located 1103, as well as the type of resource 1104.

In accordance with an embodiment, the user interface 1101 can additionally comprise a selection pane, such as the compartment selection pane 1120, which can allow the users to select a compartment 1110 within the compartment tree 1121. The resources of the selected compartment can then be displayed, as well as be filtered 1105 via selected options. As shown in FIG. 11, the listed resources within the selected compartment view span multiple regions, including Regions A-D, as shown. A manage resources dashboard 1111 can also be provided to allow for management of the listed resources, provided that the user has sufficient credentials. Such management tasks can include, for example, create, delete, move, start, or stop a resource.

In accordance with an embodiment, a cross region resource management tool can provide users with a global view of all user resources across each region, where resources can be scoped by compartment. The tool can provide a hierarchical view and compartment picker on left pane. Choosing a compartment from the picker will show all the resources across all regions in that compartment. Each resource will show the additional information related to that resource—resource name, resource type, region, status etc. The user can then choose to manipulate the resource from this view. A user can various filters and searches to narrow down the resource list or look for a specific resource.

FIG. 12 is a flowchart of a method for cross region resource management for regional infrastructure resources in a cloud infrastructure environment, in accordance with an embodiment.

In accordance with an embodiment, at step 1210, the method can provide a computer comprising one or more microprocessors.

In accordance with an embodiment, at step 1220, the method can provide a cloud infrastructure environment comprising a plurality of regions, wherein a tenancy is defined within the cloud infrastructure environment, the tenancy spanning at least two of the plurality of regions.

In accordance with an embodiment, at step 1230, the method can provide a cross-region resource management tool comprising a user interface.

In accordance with an embodiment, at step 1240, the method can provide a plurality of resources of the tenancy, wherein each of the plurality of resources are located within a region of the at least two of the plurality of regions.

In accordance with an embodiment, at step 1250, the method can, upon receiving a request associated with the tenancy, display, by the cross-region resource management tool, via the user interface, a listing of the plurality of resources of the tenancy.

In accordance with an embodiment, at step 1260, the method can display, by the cross-region resource management tool displays, in association with the display of the plurality of resources, an indication of the location of each of the plurality of resources.

In accordance with various embodiments, the teachings herein may be conveniently implemented using one or more conventional general purpose or specialized computer, computing device, machine, or microprocessor, including one or more processors, memory and/or computer readable storage media programmed according to the teachings of the present disclosure. Appropriate software coding can readily be prepared by skilled programmers based on the teachings of the present disclosure, as will be apparent to those skilled in the software art.

In some embodiments, the teachings herein can include a computer program product which is a non-transitory computer readable storage medium (media) having instructions stored thereon/in which can be used to program a computer to perform any of the processes of the present teachings. Examples of such storage mediums can include, but are not limited to, hard disk drives, hard disks, hard drives, fixed disks, or other electromechanical data storage devices, floppy disks, optical discs, DVD, CD-ROMs, microdrive, and magneto-optical disks, ROMs, RAMs, EPROMs, EEPROMs, DRAMs, VRAMs, flash memory devices, magnetic or optical cards, nanosystems, or other types of storage media or devices suitable for non-transitory storage of instructions and/or data.

The foregoing description has been provided for the purposes of illustration and description. It is not intended to be exhaustive or to limit the scope of protection to the precise forms disclosed. Many modifications and variations will be apparent to the practitioner skilled in the art. For example, although several of the examples provided herein illustrate use with enterprise software applications components such as Oracle Fusion Applications; cloud environments such as Oracle Cloud Infrastructure; and cloud services such as Oracle Fusion Analytics; in accordance with various embodiments, the systems and methods described herein can be used with other types of enterprise software applications, cloud environments, cloud services, cloud computing, or other computing environments.

The embodiments were chosen and described in order to best explain the principles of the present teachings and their practical application, thereby enabling others skilled in the art to understand the various embodiments and with various modifications that are suited to the particular use contemplated. It is intended that the scope be defined by the following claims and their equivalents. 

What is claimed is:
 1. A system for cross region resource management for regional infrastructure resources in a cloud infrastructure environment, comprising: a computer comprising one or more microprocessors; a cloud infrastructure environment comprising a plurality of regions, wherein a tenancy is defined within the cloud infrastructure environment, the tenancy spanning at least two of the plurality of regions; and a cross-region resource management tool comprising a user interface; wherein a plurality of resources of the tenancy are provided, wherein each of the plurality of resources are located within a region of the at least two of the plurality of regions; wherein, upon receiving a request associated with the tenancy, the cross-region resource management tool displays, via the user interface, a listing of the plurality of resources of the tenancy; wherein the cross-region resource management tool displays, in association with the display of the plurality of resources, an indication of the location of each of the plurality of resources.
 2. The system of claim 1, wherein the cross-region resource management tool performs a management action on at least one resource of the plurality of resources of the tenancy.
 3. The system of claim 2, wherein the cross-region resource management tool performs the management action on at least one resource of the plurality of resources of the tenancy in response to instructions received from a user via the user interface of the cross-region resource management tool.
 4. The system of claim 3, wherein prior to performing the management action on the at least one resource of the plurality of resources of the tenancy, the cross-region resource management tool determines a sufficient level of access of the user.
 5. The system of claim 4, wherein the cross-region resource management tool is provided in a first region of the at least two of the plurality of regions; wherein the first region of the at least two of the plurality of regions is a home region of the user.
 6. The system of claim 5, wherein the at least one resource on which the management action is performed on is located in a second region of the at least two of the plurality of regions.
 7. The system of claim 6, wherein the management action comprises at least one of starting the at least one resource; stopping the at least one resource; creating the at least one resource; moving the at least one resource; and deleting the at least one resource.
 8. A method for cross region resource management for regional infrastructure resources in a cloud infrastructure environment, comprising: providing a computer comprising one or more microprocessors; providing a cloud infrastructure environment comprising a plurality of regions, wherein a tenancy is defined within the cloud infrastructure environment, the tenancy spanning at least two of the plurality of regions; providing a cross-region resource management tool comprising a user interface; providing a plurality of resources of the tenancy, wherein each of the plurality of resources are located within a region of the at least two of the plurality of regions; upon receiving a request associated with the tenancy, displaying, by the cross-region resource management tool, via the user interface, a listing of the plurality of resources of the tenancy; and displaying, by the cross-region resource management tool displays, in association with the display of the plurality of resources, an indication of the location of each of the plurality of resources.
 9. The method of claim 8, further comprising: performing, by the cross-region resource management tool, a management action on at least one resource of the plurality of resources of the tenancy.
 10. The method of claim 9, wherein the cross-region resource management tool performs the management action on at least one resource of the plurality of resources of the tenancy in response to instructions received from a user via the user interface of the cross-region resource management tool.
 11. The method of claim 10, wherein prior to performing the management action on the at least one resource of the plurality of resources of the tenancy, the cross-region resource management tool determines a sufficient level of access of the user.
 12. The method of claim 11, wherein the cross-region resource management tool is provided in a first region of the at least two of the plurality of regions; wherein the first region of the at least two of the plurality of regions is a home region of the user.
 13. The method of claim 12, wherein the at least one resource on which the management action is performed on is located in a second region of the at least two of the plurality of regions.
 14. The method of claim 13, wherein the management action comprises at least one of starting the at least one resource; stopping the at least one resource; creating the at least one resource; moving the at least one resource; and deleting the at least one resource.
 15. A non-transitory computer readable storage medium having instructions for cross region resource management for regional infrastructure resources in a cloud infrastructure environment, which when read and executed by a computer cause the computer to perform steps comprising: providing a computer comprising one or more microprocessors; providing a cloud infrastructure environment comprising a plurality of regions, wherein a tenancy is defined within the cloud infrastructure environment, the tenancy spanning at least two of the plurality of regions; providing a cross-region resource management tool comprising a user interface; providing a plurality of resources of the tenancy, wherein each of the plurality of resources are located within a region of the at least two of the plurality of regions; upon receiving a request associated with the tenancy, displaying, by the cross-region resource management tool, via the user interface, a listing of the plurality of resources of the tenancy; and displaying, by the cross-region resource management tool displays, in association with the display of the plurality of resources, an indication of the location of each of the plurality of resources.
 16. The non-transitory computer readable storage medium having of claim 15, further comprising: performing, by the cross-region resource management tool, a management action on at least one resource of the plurality of resources of the tenancy.
 17. The non-transitory computer readable storage medium having of claim 16, wherein the cross-region resource management tool performs the management action on at least one resource of the plurality of resources of the tenancy in response to instructions received from a user via the user interface of the cross-region resource management tool.
 18. The non-transitory computer readable storage medium having of claim 17, wherein prior to performing the management action on the at least one resource of the plurality of resources of the tenancy, the cross-region resource management tool determines a sufficient level of access of the user.
 19. The non-transitory computer readable storage medium having of claim 18, wherein the cross-region resource management tool is provided in a first region of the at least two of the plurality of regions; wherein the first region of the at least two of the plurality of regions is a home region of the user.
 20. The non-transitory computer readable storage medium having of claim 19, wherein the at least one resource on which the management action is performed on is located in a second region of the at least two of the plurality of regions; and wherein the management action comprises at least one of starting the at least one resource; stopping the at least one resource; creating the at least one resource; moving the at least one resource; and deleting the at least one resource. 